Git-native Prompt Management System (PMS)
GitPMS is a multi-agent execution framework and a Prompt Management System (PMS) built on GitNext, designed to provide deterministic, auditable, and reproducible execution of prompt-based workflows. It leverages GitNext primitives—operation log, artifact tracking, and dual-hash identity system—to coordinate multiple agents while ensuring semantic conflict resolution, provenance tracking, and rollback capabilities.
Git-PMS provides a robust, auditable, deterministic multi-agent execution framework leveraging GitNext primitives. It solves prior scalability, conflict, consensus, and observability gaps. With cryptographically-secure agent namespaces, artifact-based semantic conflict detection, and indexed provenance, it is production-ready and fully compatible with Git workflows.
- Deterministic multi-agent execution with causality guarantees
- Semantic conflict detection across artifacts and resources
- Provenance tracking for agent actions and prompt outputs
- Reputation-weighted consensus for merges and approvals
- Safe rollback and checkpointing for operational safety
- Full auditability via immutable operation log and tracing
- Cross-platform and multi-environment support (CLI, WASM, cloud)
| Term | Definition |
|---|---|
| GitNext_System | The underlying GitNext platform providing storage, operation log, artifact tracking, and indices. |
| AgentOperation | A GitNext operation entry extended with agent metadata, prompt hash, confidence, and causal dependencies. |
| SemanticResource | Logical code/configuration/database resources tracked as artifacts. |
| ArtifactTracker | GitNext module managing stable artifact identities and provenance. |
| AgentNamespace | BLAKE3-based internal agent storage with capability-based access control. |
| QuorumPolicy | Defines weighted voting and approval rules for multi-agent consensus. |
| DeterminismTier | Classification of operations: Green (fully deterministic), Yellow (conditionally deterministic), Red (non-deterministic). |
| Checkpoint | Snapshot of repository state for rollback purposes. |
| Git-PMS Feature | GitNext ADR | Mapping / Rationale |
|---|---|---|
| Operation log for causality | ADR-003 | Agent operations stored as log entries; enables undo/redo, deterministic replay, and causality tracking. |
| Artifact-based semantic resources | ADR-004 | Semantic conflict detection via artifact dependency graphs; orthogonal to Git compatibility. |
| Dual-hash agent isolation | ADR-001 | Internal BLAKE3 identity for agent objects; SHA-1 only at Git export boundaries. |
| Indexed provenance queries | ADR-004 | Reuses GitNext indices for efficient O(log N) queries of operations and artifacts. |
| Rollback and checkpointing | ADR-003 | Checkpoints leverage operation log positions for deterministic rollback. |
| Cross-agent capability enforcement | ADR-002 | Uses GitNext storage abstraction with cryptographic tokens for secure delegation. |
graph TB
subgraph "Agent Layer"
A1[Optimizer Agent]
A2[Reviewer Agent]
A3[Security Agent]
A4[Supervisor Agent]
end
subgraph "Coordination Layer"
Sched[Agent Scheduler]
Merge[Semantic Merger]
Conflict[Conflict Resolver]
Consensus[Consensus Engine]
end
subgraph "GitNext Core"
OpLog[Operation Log - ADR-003]
ArtTrack[Artifact Tracker - ADR-004]
Query[Indexed Query Engine]
Storage[Storage Abstraction]
end
subgraph "Provenance & Audit"
Blame[Cross-Reference Index]
Trace[Distributed Tracing]
Audit[Immutable Audit Log]
end
A1 --> Sched
A2 --> Sched
A3 --> Sched
A4 --> Consensus
Sched --> Merge
Merge --> Conflict
Conflict --> Consensus
Merge --> ArtTrack
Merge --> Query
Conflict --> OpLog
OpLog --> Storage
ArtTrack --> Storage
Query --> Storage
OpLog --> Blame
ArtTrack --> Blame
Blame --> Trace
Trace --> Audit
Prompt flow, artifact tracking, commits, semantic conflict resolution, consensus, and rollback:
graph TD
%% Agents
subgraph "Agent Layer"
A_Optimizer[Agent: Optimizer]
A_Reviewer[Agent: Reviewer]
A_Security[Agent: Security]
A_Supervisor[Agent: Supervisor]
end
%% Scheduler
subgraph "Coordination Layer"
Scheduler[Agent Scheduler]
Merger[Semantic Merger]
ConflictResolver[Conflict Resolver]
ConsensusEngine[Consensus Engine]
end
%% GitNext Core
subgraph "GitNext Core"
OpLog[Operation Log - ADR-003]
Artifacts[Artifact Tracker - ADR-004]
IndexedQuery[Indexed Query Engine]
DualHash[BLAKE3/Git Dual-Hash - ADR-001]
Storage[Storage Abstraction]
end
%% Provenance & Audit
subgraph "Provenance & Audit"
CrossRef[Cross-Reference Index]
Tracing[Distributed Tracing]
AuditLog[Immutable Audit Log]
Checkpoints[Rollback Checkpoints]
end
%% Prompt Flow
A_Optimizer -->|Prompt & Delta| Scheduler
A_Reviewer -->|Prompt & Delta| Scheduler
A_Security -->|Prompt & Delta| Scheduler
A_Supervisor -->|Supervisor Input| ConsensusEngine
%% Coordination
Scheduler --> Merger
Merger --> ConflictResolver
ConflictResolver --> ConsensusEngine
%% GitNext Core Updates
Merger -->|Commit Changes| Artifacts
Merger -->|Commit Changes| IndexedQuery
ConflictResolver -->|Resolved Operations| OpLog
ConsensusEngine -->|Approved Operations| OpLog
%% Storage
OpLog --> Storage
Artifacts --> Storage
IndexedQuery --> Storage
DualHash --> Storage
%% Provenance & Observability
OpLog --> CrossRef
Artifacts --> CrossRef
CrossRef --> Tracing
Tracing --> AuditLog
OpLog --> Checkpoints
Checkpoints -->|Rollback| Merger
%% Feedback Loops
ConsensusEngine -->|Approval/Rejection| Scheduler
Tracing -->|Insights & Metrics| ConsensusEngine
Checkpoints -->|Recovery| Scheduler
%% Notes
classDef agentLayer fill:#f9f,stroke:#333,stroke-width:2px;
classDef coordinationLayer fill:#bbf,stroke:#333,stroke-width:2px;
classDef gitNextCore fill:#bfb,stroke:#333,stroke-width:2px;
classDef provenance fill:#ffd,stroke:#333,stroke-width:2px;
class A_Optimizer,A_Reviewer,A_Security,A_Supervisor agentLayer;
class Scheduler,Merger,ConflictResolver,ConsensusEngine coordinationLayer;
class OpLog,Artifacts,IndexedQuery,DualHash,Storage gitNextCore;
class CrossRef,Tracing,AuditLog,Checkpoints provenance;
- Prompt-to-Commit Flow: Agent prompts are scheduled → merged → resolved → applied to GitNext
- Semantic Conflict Resolution: Artifact tracker and conflict resolver ensure overlapping logical changes are detected
- Consensus Engine: Role-based quorum, veto, and reputation-weighted voting integrated
- Operation Log & Checkpoints: Deterministic undo/redo and rollback points
- Provenance & Audit: Cross-references, distributed tracing, and immutable audit log
- Dual-Hash Isolation: Agent boundaries maintained with BLAKE3 internally, SHA-1 externally
- Each agent (Optimizer, Reviewer, Security, Supervisor) operates in its AgentNamespace.
- BLAKE3 hashes used internally; SHA-1 only for Git export.
- Agents issue operations stored in GitNext's operation log.
- Agent Scheduler: Determines execution order and assigns tasks.
- Semantic Merger: Integrates multiple agent outputs.
- Conflict Resolver: Detects semantic conflicts using artifact dependency graphs.
- Consensus Engine: Applies quorum policies with reputation-weighted voting.
- Operation Log: Tracks all agent operations for determinism and rollback.
- Artifact Tracker: Maintains artifact identities and dependencies.
- Indexed Query Engine: Supports fast provenance queries and history lookup.
- Storage Abstraction: Supports multiple backends (Memory, SQLite, PostgreSQL, S3, IndexedDB).
- Cross-Reference Index: Maps operations to artifacts and prompts.
- Distributed Tracing: Captures causal spans of agent actions.
- Immutable Audit Log: Provides full traceability and security auditing.
-
AgentOperation
struct AgentOperation { git_operation: LogEntry, // ADR-003 agent_id: AgentId, prompt_hash: Blake3Hash, confidence: f64, causal_dependencies: Vec<OperationId>, }
-
Semantic Resources
- Tracked as artifacts: code functions, configurations, database schema.
- Conflict detection via dependency overlap.
-
Consensus
- Weighted voting with quorum rules, veto roles, tie-breakers.
- Reputation tracking based on historical operation outcomes.
-
Rollback
- Checkpoints saved using operation log positions.
- Emergency rollback restores repository deterministically.
- AgentNamespaces enforce access policies.
- SignedCapabilities allow controlled cross-agent reads/writes.
- Reputation-weighted consensus prevents malicious or Byzantine agents.
- Audit logs capture all operations and vote decisions for external verification.
- Operations classified into Green/Yellow/Red tiers.
- Replay via operation log validates determinism.
- Snapshots for external data (RAG, API) ensure reproducibility.
- Tree diffs confirm state equivalence post-replay.
- Distributed tracing captures agent operations and causal relationships.
- Causality graph renders execution DAG.
- Anomaly detection flags unusual behavior (token spikes, long spans).
- Causality: GitNext operation log ensures deterministic ordering.
- Semantic Merge: Artifact-based dependency checks prevent logical conflicts.
- Consensus: Weighted quorum ensures valid decision-making.
- Rollback: Checkpoint/undo mechanism guarantees state recovery.
- Provenance: Indexed queries confirm prompt→artifact→commit lineage.
- Determinism: Replay validates outputs match expected results.
- Storage Backends: Memory for tests, SQLite/PostgreSQL for local/distributed, IndexedDB for browser, S3 for cloud.
- Scalability: Indexed queries and operation log support O(log N) lookups.
- Cross-Platform: CLI, WASM, cloud-native, and embedded environments supported.
- Performance: Parallel execution of independent agents; batch commits for high-frequency operations.
- SSH transport in initial version
- Hook execution
- Automatic reconciliation of Red-tier non-deterministic operations
- Real-time GUI; CLI/WASM interfaces only
- GitNext ADRs: ADR-001, ADR-002, ADR-003, ADR-004
- Git-PMS internal design review, 2025-12-30
- Rust async/await ecosystem
- WebAssembly bindings for GitNext